$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft File: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft (raw, json) Hash identifier: aIc1LBs0dywD4CdxV0sF1VqGN+Sbk9pTC6k3Cnyow74= Subject key identifier: 45:0E:0C:6E:0A:DB:51:09:68:7E:8E:E7:8B:B8:2B:8B:9E:EB:59:9F Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft Manifest number: B4 Signing time: Thu 13 Mar 2025 04:16:58 +0000 Manifest this update: Thu 13 Mar 2025 04:16:57 +0000 Manifest next update: Thu 20 Mar 2025 04:16:57 +0000 Files and hashes: 1: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl (hash: 12PM06w0yjtaustAZMIToiu8c1QyXvnUFppeduv583c=) 2: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (hash: 31H5Vhs+f/h3u06zcfDWH9AwqpcXpDRyJ5vXA17DcEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80 Validity Not Before: Mar 13 04:16:57 2025 GMT Not After : Mar 20 04:16:57 2025 GMT Subject: CN=67d25c3a-5247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:85:f2:c2:55:62:01:e4:51:2e:64:27:31:5f: 92:f8:02:f1:26:c7:06:f4:1a:ca:31:f5:ee:b7:c6: a5:45:b0:7b:5d:91:ae:59:03:5f:8e:8d:50:ae:e9: 8e:d7:17:83:03:2d:ad:ae:54:6c:47:a2:d2:de:d2: de:bb:1d:6d:2d:43:c5:1d:8e:fe:5a:d4:27:1c:a9: 0e:42:00:c2:d5:67:5e:c4:bc:b8:88:3d:f2:fd:95: d2:7b:c8:3a:56:eb:3e:86:6e:14:4b:5e:39:09:10: 16:52:7e:97:96:b4:21:c8:05:05:b0:d5:da:8e:c4: be:5c:84:32:22:46:4f:04:a2:84:df:cd:c9:16:50: e2:20:e1:34:56:75:b7:f2:2b:12:be:14:73:de:d6: b7:7d:1b:70:29:58:e9:33:14:b4:e1:44:6b:f7:2a: e8:c7:24:40:4e:4f:b4:ab:94:5a:a4:a9:7e:73:d1: 23:24:5c:dd:0c:61:4c:8b:4a:bb:c8:60:3b:09:dd: 74:8e:55:53:47:bd:0e:61:9a:55:e2:7b:56:9b:30: 3a:f8:9a:6e:a3:05:1e:19:d1:58:d3:ce:11:3a:0b: ea:11:93:6b:71:c5:30:19:7c:1e:d9:b2:52:3f:b5: e9:8d:3a:9d:f3:ff:b8:9f:b7:1b:6d:ed:89:ce:d2: 93:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0E:0C:6E:0A:DB:51:09:68:7E:8E:E7:8B:B8:2B:8B:9E:EB:59:9F X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:fb:67:cd:f3:d0:a7:4d:87:15:42:11:1e:a0:a5:4b:a9:18: 93:1b:20:3a:33:94:06:ed:6a:cc:39:91:5b:4e:66:7d:41:ac: e0:2b:73:2e:65:55:73:6d:1a:94:ec:f1:ef:f4:c1:79:d0:10: a5:09:d9:2d:a9:3e:73:1b:d8:fe:ac:fb:26:d2:5b:e4:86:7e: eb:7d:24:5e:14:bb:1e:17:13:b4:4c:87:49:3c:51:d6:b0:1a: 9a:df:8f:83:fd:c1:57:c8:28:c5:14:62:30:e1:a0:1c:ac:32: 35:e5:d2:a1:e7:ad:cd:fd:a2:bc:da:23:94:cf:1b:8d:14:25: 92:53:07:4b:9e:6d:fc:28:cc:15:b5:81:23:16:e1:96:fc:7f: 18:02:8d:fb:1e:44:e9:a5:f0:5f:5c:f4:0b:1e:0b:28:ce:0b: a1:19:91:de:75:ff:c3:fd:4a:7c:be:70:77:c4:1e:2f:9e:a6: 3b:21:d2:07:fd:e1:66:74:71:b2:b1:a6:3e:6f:96:19:c3:5d: 07:55:eb:3e:f5:b3:74:79:55:11:22:6b:a5:97:32:63:b9:c0: f9:8e:35:eb:4b:95:33:ed:99:21:0a:1a:6c:63:36:cd:ab:b8: db:76:28:89:45:ef:97:a4:8d:6c:ae:d8:13:42:3b:fe:91:8a: 69:df:2f:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGODAxMTAvBgNVBAUTKEY0MTBDNDgzQTRDOEM5MTZGRkQ0Q0Y0MjBDNEMxMTA4 ODk3OTg4OTEwHhcNMjUwMzEzMDQxNjU3WhcNMjUwMzIwMDQxNjU3WjAYMRYwFAYD VQQDEw02N2QyNWMzYS01MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYXywlViAeRRLmQnMV+S+ALxJscG9BrKMfXut8alRbB7XZGuWQNfjo1QrumO 1xeDAy2trlRsR6LS3tLeux1tLUPFHY7+WtQnHKkOQgDC1WdexLy4iD3y/ZXSe8g6 Vus+hm4US145CRAWUn6XlrQhyAUFsNXajsS+XIQyIkZPBKKE383JFlDiIOE0VnW3 8isSvhRz3ta3fRtwKVjpMxS04URr9yroxyRATk+0q5RapKl+c9EjJFzdDGFMi0q7 yGA7Cd10jlVTR70OYZpV4ntWmzA6+JpuowUeGdFY084ROgvqEZNrccUwGXwe2bJS P7XpjTqd8/+4n7cbbe2JztKT4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUODG4K 21EJaH6O54u4K4ue61mfMB8GA1UdIwQYMBaAFPQQxIOkyMkW/9TPQgxMEQiJeYiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkY4MC85NEM1NEI4MDAz OTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlSYl8xTTlDREV3UkNJbDVp SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlS Yl8xTTlDREV3UkNJbDVpSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk+2fN89CnTYcVQhEeoKVLqRiTGyA6M5QG7WrMOZFbTmZ9QazgK3Mu ZVVzbRqU7PHv9MF50BClCdktqT5zG9j+rPsm0lvkhn7rfSReFLseFxO0TIdJPFHW sBqa34+D/cFXyCjFFGIw4aAcrDI15dKh563N/aK82iOUzxuNFCWSUwdLnm38KMwV tYEjFuGW/H8YAo37HkTppfBfXPQLHgsozguhGZHedf/D/Up8vnB3xB4vnqY7IdIH /eFmdHGysaY+b5YZw10HVes+9bN0eVURImullzJjucD5jjXrS5Uz7ZkhChpsYzbN q7jbdiiJRe+XpI1srtgTQjv+kYpp3y9/ -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:10 2025 by rpki-client